Описание
TCMAN GIM does not perform an authorization check when trying to access determined resources. A remote attacker could exploit this vulnerability to access URL that require privileges without having them. The exploitation of this vulnerability might allow a remote attacker to obtain sensible information.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:tcman:gim:8.0:*:*:*:*:*:*:*
cpe:2.3:a:tcman:gim:11.0:*:*:*:*:*:*:*
EPSS
Процентиль: 42%
0.00203
Низкий
7.2 High
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-862
CWE-862
Связанные уязвимости
CVSS3: 7.2
github
около 4 лет назад
TCMAN GIM does not perform an authorization check when trying to access determined resources. A remote attacker could exploit this vulnerability to access URL that require privileges without having them. The exploitation of this vulnerability might allow a remote attacker to obtain sensible information.
EPSS
Процентиль: 42%
0.00203
Низкий
7.2 High
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-862
CWE-862